0b17c5fe9bb75a0eb6f26c1eca0e02583844037bff8b299482ab738c008fcd6c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b17c5fe9bb75a0eb6f26c1eca0e02583844037bff8b299482ab738c008fcd6c
Size

121KB
MD5

47432a2e746a7f94bdfaaf1c9223f9e0
SHA1

dac85cdc3e5dda8d5b819f8d587881fbda5d7372
SHA256

0b17c5fe9bb75a0eb6f26c1eca0e02583844037bff8b299482ab738c008fcd6c
SHA512

dcfcba9ec477f1164051c6f9bc5a6f8e0db328a6c70fce32c539956a890fbb29b18145e87d4dc901a6504a4682e099b26843226fc58b680f3f09ac3953ec08b0
SSDEEP

3072:M7qBvCv2HTnnnnD/WKSQNiH2qQ0MEnJGYC6HlEMkKhHYm5:Pxznnnn359qQ0vngYBeMkI4

Score

N/A

Malware Config

Signatures

Files

0b17c5fe9bb75a0eb6f26c1eca0e02583844037bff8b299482ab738c008fcd6c
.exe windows x86

6f76b94fe375a75b9c815a444c455967

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
GetFullPathNameA
lstrcmpiW
CloseHandle
ReleaseSemaphore
GetModuleHandleA
GetPrivateProfileIntW
GetFileAttributesW
GetDiskFreeSpaceW
CloseHandle
GetFullPathNameA
CreateEventW
WaitForMultipleObjects
CreateDirectoryW
GetPrivateProfileIntW
OpenMutexA
GetVolumePathNameA
CloseHandle
GetEnvironmentVariableA
GetModuleHandleW
lstrcmpW
GetPrivateProfileSectionW
HeapCreate

certmgr

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ